Comment on No, Okta, senior management, not an errant employee, caused you to get hacked
HoornseBakfiets@feddit.nl 1 year ago- Not necessarily 2fa only secures you from direct attacks to the google login, but attackers can gain access another way: session cookie stealing.
- 2fa only really exists because people aren’t using better & unique passwords
asdfasdfasdf@lemmy.world 1 year ago
#2 isn’t true. I could choose a super strong password, but if the company chose to roll their own security and the dev chose to store user passwords in plain text, then their database is hacked, my password is out in the open.
That cannot happen with MFA since the password never leaves your hardware key.